Cyberattacks: Page 12
-
Permission granted by Snowflake
After a wave of attacks, Snowflake insists security burden rests with customers
The cloud-based data warehouse vendor remains “slightly muted” about the attacks on its customers because it wasn’t breached, CEO Sridhar Ramaswamy said.
By Matt Kapko • Aug. 22, 2024 -
Getty Images
Microchip Technology operations, order fulfillment disrupted by cyberattack
The Arizona-based chipmaker disclosed the intrusion in a regulatory filing. Manufacturing facilities and certain IT systems are impacted.
By Matt Kapko • Aug. 21, 2024 -
Explore the Trendlineâž”
Getty Images
-
Getty Images
CISA warns of active exploits hitting popular CI/CD tool Jenkins
Researchers at CloudSEK and Juniper Networks said a ransomware group targeted Brontoo Technology Solutions by exploiting the critical CVE. The attack disrupted banks in India.
By Matt Kapko • Aug. 20, 2024 -
Getty Images
Manual techniques are fueling ransomware attacks, CrowdStrike says
2024 is on track to be the highest-grossing year for ransomware payments, Chainalysis found, and threat groups are going after the technology sector.
By Matt Kapko • Aug. 16, 2024 -
Getty Plus via Getty Images
M&A activity can amplify ransomware insurance losses, research finds
The financial severity of claims related to ransomware attacks increased more than 400% from 2022 to 2023, the study found.
By Alexei Alexis • Aug. 14, 2024 -
Justin Sullivan via Getty Images
Attackers target legacy Cisco Smart Install features
Thousands of Cisco Smart Install IPs remain exposed to the internet as CISA warns that organizations are still employing weak passwords.
By David Jones • Aug. 12, 2024 -
Lari Bat
LoanDepot reports net loss as cyber-related settlement hit Q2 financial results
The company disclosed $27 million in charges primarily related to a settlement deal in connection with a class action lawsuit.
By David Jones • Aug. 9, 2024 -
Bruce Bennett via Getty Images
Henry Schein’s slow recovery from cyber incident hits Q2 results
William Blair analysts said the “lingering impacts from the cyberattack are somewhat surprising.”
By Nick Paul Taylor • Aug. 8, 2024 -
Matt Kapko/Cybersecurity Dive
CrowdStrike snafu was a ‘dress rehearsal’ for critical infrastructure disruptions, CISA director says
Despite the disruption, Jen Easterly said the outage was a "useful exercise" to determine the resiliency of critical infrastructure organizations.
By Matt Kapko • Aug. 8, 2024 -
Retrieved from J.M. Eddins Jr./U.S. Air Force.
Deep DiveAre cybersecurity professionals OK?
Absorbing the impacts of cyberattacks takes a personal toll on defenders. Separating the evil they see from all that’s good in the world doesn’t always come easy.
By Matt Kapko • Aug. 7, 2024 -
Getty Images
Ransomware swells despite collective push to curb attacks
Rapid7 researchers observed more than 2,570 ransomware attacks in the first half of 2024. That’s the equivalent of 14 publicly claimed attacks per day, on average.
By Matt Kapko • Aug. 6, 2024 -
Sponsored by Palo Alto Networks
Inside the NOC used to defend this year’s Black Hat
With the power of security operations automation, we are freed up from the more mundane tasks and can examine more complex threat patterns to protect the conference.
By James Holland, Senior Solutions Architect, Palo Alto Networks • Aug. 5, 2024 -
Michael M. Santiago via Getty Images
Microsoft confirms Azure, 365 outage linked to DDoS attack
The company said its own response to the outage may have made the impact worse.
By David Jones • July 31, 2024 -
Getty Images
Some companies pay ransomware attackers multiple times, survey finds
Even after paying a ransom, more than a third of companies either did not receive the decryption keys or were given corrupted keys, Semperis found.
By Justin Bachman • July 31, 2024 -
Getty Images
Sponsored by Rockwell AutomationWater systems under siege: How CISOs can protect critical infrastructure from cyberthreats
As regulatory oversight evolves, most CISOs are focused on modernizing and improving OT cybersecurity.
July 29, 2024 -
Getty Images
Healthcare is an ‘easy victim’ for ransomware attacks. How hospitals can mitigate the damage.
Limited resources in a highly connected ecosystem can make hospitals vulnerable, but planning ahead and implementing key protections could help thwart attacks.
By Emily Olsen • July 19, 2024 -
Getty Images
Majority of SEC civil fraud case against SolarWinds dismissed, but core remains
The court ruling related to claims leading up to and immediately following the 2020 Sunburst supply chain hack.
By David Jones • Updated July 18, 2024 -
Courtesy of UnitedHealth Group
UnitedHealth’s cyberattack response costs to surpass $2.3B this year
The healthcare giant’s new estimate is roughly $1 billion higher than previous forecasts as the cyberattack on subsidiary Change Healthcare continues to hamper its profit outlook.
By Rebecca Pifer • July 17, 2024 -
Getty Images
Weak credentials behind nearly half of all cloud-based attacks, research finds
Credential mismanagement was the top initial access vector for cloud environment attacks during the first half of 2024, a Google Cloud report found.
By Matt Kapko • July 17, 2024 -
Getty Plus via Getty Images
Ransomware leak site posts jumped 20% in Q2
Threat groups claimed attacks on 1,237 organizations during the quarter, marking an increase from Q1. U.S.-based businesses accounted for more than half of all victims, Reliaquest found.
By Matt Kapko • July 16, 2024 -
Mario Tama/Staff/Getty Images News via Getty Images
AutoNation warns CDK cyberattack will dent quarterly earnings
The major North American car dealership estimates the attack will lead to a $1.50 per-share earnings impact.
By David Jones • July 15, 2024 -
Permission granted by Advance Auto Parts
Snowflake-linked attack on Advance Auto Parts exposes 2.3 million people
One of the few customers to publicly link Snowflake to a third-party intrusion said its database was breached for 40 days.
By Matt Kapko • July 15, 2024 -
Ronald Martinez via Getty Images
Massive Snowflake-linked attack exposes data on nearly 110M AT&T customers
Attackers breached AT&T’s Snowflake environment for 11 days in April, and stole customers’ call and text message records spanning a six-month period from 2022.
By Matt Kapko • July 12, 2024 -
Chip Somodevilla via Getty Images
MOVEit legal liabilities, expenses pile up for Progress Software
The prospective financial hit from a widely exploited vulnerability in the file-transfer service is growing. Progress confronts lawsuits, regulator scrutiny and government investigations.
By Matt Kapko • July 10, 2024 -
Permission granted by Snowflake
Snowflake allows admins to enforce MFA as breach investigations conclude
Three months after an attacker targeted more than 100 customer environments, Snowflake is making it easier for existing customers to enforce MFA, but it isn’t requiring it.
By Matt Kapko • July 9, 2024
Previous
